Windows 2000 SP4 Breaks DNS?

  • Thread starter Thread starter CecilWilliams
  • Start date Start date
C

CecilWilliams

I "upgraded" my home pc running Windows 2000 Pro to Service Pack 4 and
it apparently broke DNS - I can access web sites in IE6 by IP number
but not by name. I can ping IP numbers, but not domain names. In the
event log I get a "Warning" with "EventID: 11050" , a dnscache error.
I haven't been able to find a solution to this other than uninstalling
SP4. Looks like I'm stuck at SP3 on my home Win2000 box, unless anyone
knows of a solution to this?

More info - I connect to Adelphia cable internet, and I'm wired to a
netgear MR814v2 router. I have an old Win98 system that is connected
to the same router and has networked non-stop while the Win2000 pc was
updated and failed.

Comments? Solutions? Anyone? Thanks in advance...

- Cecil
send all spam to (e-mail address removed), but to email me, send it to:
cecilw at cecilw dot com
 
Hi Cecil,
Can you please give me more information of your machine?
1)IS your machine a domaincontroller or joined to some domain?
2)If 1 is yes, What is the Fully Qualified domain name?
3)Send me ipconfig /all output
4) Can you paste the complete description of event ID 11050 as well?

Thanks,
Ragini

This posting is provided "AS IS" with no warranties, and confers no rights.
OR if you wish to include a script sample in your post please add "Use of
included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm"
 
Ragini Srinivasa Murthy said:
Hi Cecil,
Can you please give me more information of your machine?
1)IS your machine a domaincontroller or joined to some domain?
Click to expand...

No, it's just a regular Win2k Pro workstation, at home and not in a
domain.
3)Send me ipconfig /all output
Click to expand...
Sent via email
4) Can you paste the complete description of event ID 11050 as well?
Click to expand...

Source: DNS CACHE
TYPE: WARNING
CATEGORY: NONE
EVENT ID: 11050
"The DNS Client service could not contact any DNS servers for a
repeated number of attempts. For the next 30 seconds the DNS Client
service will not use the network to avoid further network performance
problems. It will resume its normal behavior after that. If this
problem persists, verify your TCP/IP configuration, specifically check
that you have a preferred (and possibly an alternate) DNS server
configured. If the problem continues, verify network conditions to
these DNS servers or contact your network administrator. "


Additional info - this pc is running an AMD Athlon 1GB CPU on an IWill
KK266R motherboard, VIA KT133A chipset, with an added pci firewire
card connected to a Lexar Compact Flash reader. Video is ATI Radeon
AIW. The DNS failure happens whether connected through the Netgear
router or connected directly to the Motorola cable modem.

Also - I had trouble repeatedly trying to download and install SP4
from the Microsoft Windows Update web site - it would stop half-way
through the update saying it had lost the network connection and could
not continue. So I downloaded the entire huge SP4 package and
installed it from a CD...


Thanks - Cecil
 
I am seeing the same problem on my MS-W2K Pro laptop.

I was on a road trip and consistently logged in to
Earthlink via dialup for about 10 straight days. Return
to office and laptop was unable to recognize 100baseT LAN.
After awhile the dialup also failed to recognize networks.
Tried hard coding DNS servers in LAN connection. Dialup
was always DHCP with dynamic DNS - can establish
connection and watch packets go across however cannot get
email or other use out of it. Can ping all the DNS
servers in my list by typing IP address but cannot use
domain names.

There are several similar posts in the W2K-Networking and
Win2K-DNS newsgroups.

ipconfig /all

Host name: calvin
Primary Dns Suffix:
Node Type: mixed
IP Routing Enabled: No
WINS Proxy Enabled: No

Ethernet adapter Spaceman_Spiff:

Connection-specific DNS Suffix:
Description: FE574B-3Com 10/100 LAN PCCard-Fast Ethernet
Physical Address: 00-50-DA-D3-D2-01
DHCP Enabled: No
IP Address: 192.168.1.50
Subnet Mask: 255.255.255.0
Default Gateway: 192.168.1.1
DNS Servers: 192.168.1.50
66.80.130.23
66.80.131.5
64.160.192.170
216.200.176.4
24.221.192.5
24.221.208.5

PPP Adapter Earthlink:

Connection-specific DNS Suffix:
Description: WAN (PPP/SLIP) Interface
Physical Address: 00-53-45-00-00-00
DHCP Enabled: No
IP Address: 209.179.226.139
Subnet Mask: 255.255.255.255
Default Gateway: 209.179.226.139
DNS Servers: 207.217.126.81
207.217.77.82
Netbios over TCPip: Disabled

nslookup

***Can't find server name for address <insert DNS ip
address here for all servers listed above>: No response
from server
***Default servers are not available
Default server: Unknown
Address: 192.168.1.50
 
Running netdiag.exe on my machine gives error:

"NETDIAG.EXE - Entry Point not found. The procedure entry
point DnsGetPrimaryDomainName_UTF8 could not be located in
the dynamic link library DNSAPI.dll."
 
In
posted their said:
Hi Cecil,
Can you please give me more information of your machine?
1)IS your machine a domaincontroller or joined to some domain?
2)If 1 is yes, What is the Fully Qualified domain name?
3)Send me ipconfig /all output
4) Can you paste the complete description of event ID 11050 as well?

Thanks,
Ragini
Click to expand...

Ragini,

I am very curious as to what you find in regards to DCs and SP4, or any W2k
version, for that matter. I've seen a number of issues here in the groups in
regards to SP4, one of them I forwarded to my MVP Lead, but would be curious
what you find out on your end.

You can also email me directly if you like.

Thank you.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
I may have just solved this problem with Windows 2000 Service Pack 4
and "broken DNS" on my home computer... I have SP4 installed now and
running. The apparent solution? I had to UNINSTALL the ZoneAlarm
firewall from my pc. Shutting it down was not enough - it apparently
leaves a service called "TrueVector Internet Monitor" running even
when it is shut down. IF this service is stopped, internet
connectivity is LOST - so you can't just stop the service, ZA must be
uninstalled to remove it. After uninstalling ZoneAlarm, Win2k SP 4
installed without a hitch...

Interestingly, I have a Pentium 4 computer at work with ZoneAlarm
installed and it had no problem updating Win2k to SP4. My home system
is an Athlon with the "never quite right" Via KT133A chipset... If
that has anything to do with it. At this point I can only speculate...

- Cecil
SPAM to (e-mail address removed)
EMAIL to cecilw at cecilw dot com
 
In
CecilWilliams said:
I tried emailing this to you Ragini, but the email bounced back
undeliverable. Here is the ipconfig /all info:

*****************
Windows 2000 IP Configuration


Host Name . . . . . . . . . . . . : XXXX-XXX
Primary DNS Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : losaca.adelphia.net
Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : losaca.adelphia.net
Description . . . . . . . . . . . : 3Com EtherLink 10/100 PCI NIC
(3C905-TX) #3 Physical Address. . . . . . . . . : 00-XX-XX-XX-XX-XX

DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.0.2
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 68.65.16.162
68.65.16.165
Lease Obtained. . . . . . . . . . : Friday, August 08, 2003 5:37:06 AM
Lease Expires . . . . . . . . . . : Monday, August 11, 2003 5:37:06 AM
*****************

spam to: (e-mail address removed)
email to: cecilw at cecilw dot com


Thanks, Cecil
Click to expand...

Hi Cecil,

Thanks for posting that information.

I see a couple problems.

1. Your Primary DNS Suffix is missing. A DC must have a Primary DNS Suffix.
From the looks of it, unless you edited the ipconfig /all to remove it so as
not to post it, it should probably be: losaca.adelphia.net. But that depends
on what your AD domain name is. If the AD domain name is something else,
then it should be that name, and it should not be of a single name style,
such as "losaca". It should be at least adelphia.net or losaca.adelphia.net,
depending on what your domain name is.

2. You are using your ISP's DNS servers. In an AD environment, that's a
no-no. Please do remove them and point ONLY to your own internal DNS server.
Then on your internal DNS server, for more efficient Internet name
resolution, use a Forwarder. Outlined below step 3 in this article below. If
the option is grayed out, delete your Root zone, also shown below that in
the same article:
http://support.microsoft.com/?id=300202

The reason is that AD stores it's information in DNS. If you use someone
else;s DNS, AD flies south since they don't have the information that AD is
looking for.

This should also be true for ALL your machines, clients, member servers,
etc.
Then in your DNS, make sure the zone, losaca.adelphia.net, is created and
you have updates set to at least YES. Then run this procedure:
ipconfig /registerdns
net stop netlogon
net start netlogon
Then insure that the SRV records get created. You can use this guide to help
you out:
241515 - How to Verify the Creation of SRV Records for a Domain Controller:
http://support.microsoft.com/default.aspx?scid=kb;EN-US;241515

If they don't appear, post back and let us know.

The empty Primary DNS suffix can be fixed, provided that the AD domain name
is losaca.adelphia.net. I have a script that can fix that. But I need to
know what the AD domain name is please, as it shows up in your ADUC.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Hi Ceil,

Next time, try doing a nslookup, set type=all then yahoo.com
In your case, your DNS is external so, that would have leaqd to them on
something installed on the PC. I'm gald it was zone alarm.

"Ace Fekay [MVP]"
 
In TIM ROBERTS <[email protected]> posted their thoughts, then I offered
mine

Tim, not sure if you're aware of it, but there has been some anamolies
reported based on SP4. The main issue is if a DC with the AD DNS name being
a single label name (no TLD), will not allow registration without modifying
a reg entry to allow single label names. There are also some minor issues
with AD names with a valid DNS names with a correct DNS configuration.
That's the one I'm concerned about. In a case like this, an nslookup may not
return the correct response from your own domain name, but of a return of an
external name would be correct (provided the Forwarders have the RA bit
o"on").

I was concerned of the latter, DC or not, with SP4, but apparently it was
the personal firewall that was the problem.

I have reported it to my MVP lead and will post the results in the public
forum once I get the go-ahead.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Ace Fekay said:
In TIM ROBERTS <[email protected]> posted their thoughts, then I offered
mine

Tim, not sure if you're aware of it, but there has been some anamolies
reported based on SP4. The main issue is if a DC with the AD DNS name being
a single label name (no TLD), will not allow registration without modifying
a reg entry to allow single label names. There are also some minor issues
with AD names with a valid DNS names with a correct DNS configuration.
That's the one I'm concerned about. In a case like this, an nslookup may not
return the correct response from your own domain name, but of a return of an
external name would be correct (provided the Forwarders have the RA bit
o"on").

I was concerned of the latter, DC or not, with SP4, but apparently it was
the personal firewall that was the problem.

I have reported it to my MVP lead and will post the results in the public
forum once I get the go-ahead.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
Click to expand...

I have the same problem, same scenario on my home Win2K machine. Recently
updated to SP4 with the MSBlast patch installed and running ZoneAlarm 4
Pro. Even with ZA4 disabled I still cannot connect to the dialup
PPP server at work. Dialup starts and then before the terminal login
window displays I get a "Cannot load dialog error 0XC000007A". This
configuration was fine prior to the SP4/MSBlast patch install.

News diving seems to indicate others have experienced this same
problem and it is a result of DNS config issues introduced in SP4. I
just need a workaround at this point. Should have backed up system
completely b4 SP4 install. Oh well, hopefully someone will provide
a fix or workaround suggestion.

Thanks,
Scott
 
In
Scott Kay said:
"Ace Fekay [MVP]"


I have the same problem, same scenario on my home Win2K machine.
Recently
updated to SP4 with the MSBlast patch installed and running ZoneAlarm
4
Pro. Even with ZA4 disabled I still cannot connect to the dialup
PPP server at work. Dialup starts and then before the terminal login
window displays I get a "Cannot load dialog error 0XC000007A". This
configuration was fine prior to the SP4/MSBlast patch install.

News diving seems to indicate others have experienced this same
problem and it is a result of DNS config issues introduced in SP4. I
just need a workaround at this point. Should have backed up system
completely b4 SP4 install. Oh well, hopefully someone will provide
a fix or workaround suggestion.

Thanks,
Scott
Click to expand...

Sorry Scott, can't help at this point other than suggesting to remove ZA,
delete your PPP connection, and recreate the PPP connection to see if that
helps.

That error:
Cannot load dialog error 0XC000007A
Is normally a "Procedure not found" error which I've seen from a
misconfigured installation or parameter. Hence, the suggestion to recreate
the connection.

--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory
 
Scott,
Based on a thread in .networking, I resolved a similar
problem by creating a new dial entry. I can only guess
that the old one was either damaged or refers to a now non
existing dialog.
---Paul
 
dns lost - but found again

I have had this problem lately... a Windows2000 machine recently just started intermittently "losing DNS".

I could NSLOOKUP anything, and get the correct answer from the command line. But somehow this information was not getting passed on to the operating system - web browsers could not get DNS resolution! (connectivity was OK, as I could surf to any website just fine if i knew it's actual IP address...)

DNS resolver cache kept showing EMPTY- wierd!

Anyway, i finally found a WORKAROUND - to get DNS back, I just made a little batch file containing one line:

ipconfig /registerdns

run this, and DNS WORKS AGAIN INSTANTLY!!!

i hope this helps somebody out there... :-)
 
Back
Top